smokeloader | 1a167d95fb54100b9136510f0ca10a93858873c22a4a5c4a2b9b5b75d4f45ef1 | Triage

Submit
Reports

Overview

overview

Static

static

1

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

file
Size

197KB
Sample

230213-j27vasbc5z
MD5

d13c3df9c1f3c0800da11b13d7476e15
SHA1

dda4a685c3319947aa67abd0b92df07195e9d7eb
SHA256

1a167d95fb54100b9136510f0ca10a93858873c22a4a5c4a2b9b5b75d4f45ef1
SHA512

41fe15ca6ed25db87dce0c532b05bff906f0cdc895e881a2c8db6eb8514068b7fd251d76615fdcaa6311111e6b387ef7faa3d9f7b1fdbbe9868c9b4f0e3ced6f
SSDEEP

3072:0rkreasJ6cOKoaWgkm+Q9yoQtuAZGRVgkgfa5xKc9K/OH70fD43:0rEe2KAgkm+Q9yVQR65a5ccc/4IfD

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20220812-en

smokeloader backdoor trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  file
- Size
  
  197KB
- MD5
  
  d13c3df9c1f3c0800da11b13d7476e15
- SHA1
  
  dda4a685c3319947aa67abd0b92df07195e9d7eb
- SHA256
  
  1a167d95fb54100b9136510f0ca10a93858873c22a4a5c4a2b9b5b75d4f45ef1
- SHA512
  
  41fe15ca6ed25db87dce0c532b05bff906f0cdc895e881a2c8db6eb8514068b7fd251d76615fdcaa6311111e6b387ef7faa3d9f7b1fdbbe9868c9b4f0e3ced6f
- SSDEEP
  
  3072:0rkreasJ6cOKoaWgkm+Q9yoQtuAZGRVgkgfa5xKc9K/OH70fD43:0rEe2KAgkm+Q9yVQR65a5ccc/4IfD
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy